[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
FW: Comments on draft-carroll-dynmobileip-cdma-04.txt
Adding the authors and other interested parties...
>> In addition, I couldn't find any reference to message integrity
>> protection. Did I just miss it?
> The document does not contain an attribute table listing what
> attributes are sent in which messages, so it's hard to tell what
> attributes are required/permitted/disallowed in which messages.
> "Message-Authenticator" is not mentioned anywhere in the document,
> which seems to imply that Message-Authenticator it is not required
> be present in Access-Request messages.
> Also, Section 7.9 seems to specify that RADIUS messages are
> encrypted, but not how:
> 7.9 Network Message Security
> The security of the MN-HA keys delivered from the RADIUS AAA
> to the MIP home agent requires confidentiality for network
> containing such keys. The specification of security
> for network messages is the responsibility of the operator, and
> outside the scope of this document. (Note that similar
> considerations apply to the distribution of Shared Secret Data,
> which is already transmitted between nodes in the ANSI-41
Hope this helps,
Why is it that most of the world's problems can't be solved by
listening to John Coltrane? -- Henry Gabriel
to unsubscribe send a message to firstname.lastname@example.org with
the word 'unsubscribe' in a single line as the message text body.